At Deloitte, our Purpose is to make an impact that matters for our clients, our people, and society. This is the lens for which our global strategy is set. It unites Deloitte professionals across geographies, businesses, and skills. It makes us better at what we do and how we do it. It enables us to deliver on our promises to stakeholders, while creating the lasting impact we seek.

Harnessing the talent of 457 000+ people located across more than 150 countries and territories, our size and scale puts us in a unique position to help change the world for the better—by bringing together the services we provide, the societal investments we make, and the collaborations we advance through our ecosystems.

Deloitte offers career opportunities across Audit & Assurance (A&A), Tax & Legal (T&L) and our Consulting Services business, which is made up of Strategy, Risk & Transactions (SR&T) and Technology & Transformation (T&T).

Deloitte South Africa is seeking an accomplished and forward‑thinking leader to grow our Cyber Assurance capability within the broader Technology Assurance portfolio. This role is ideal for a seasoned professional with extensive experience in cybersecurity governance, control assessments, cloud security assurance, and cyber maturity evaluation — coupled with a strong track record of building teams, driving market growth, and leading complex assurance engagements.

You will play a pivotal role in shaping Deloitte’s Cyber Assurance practice, strengthening market presence, and supporting organisations in building trust and confidence in their cyber control environments.

Market Leadership & Growth

• Drive business development efforts to expand Deloitte’s Cyber Assurance practice across South Africa, with support to the Africa Member Firm when needed.
• Originate and convert new opportunities focused on cyber governance, control assurance, cloud security assurance, vulnerability management assurance, and ISO 27001 reviews.
• Build and sustain strong relationships with C‑suite executives, cybersecurity leaders, audit committees, and boards.
• Represent Deloitte as a thought leader on cybersecurity governance, assurance, and risk management.
• Contribute to thought leadership, go‑to‑market strategies, and industry engagements focused on strengthening organisational cyber resilience through assurance-driven insights.

Service Delivery & Innovation

• Lead and manage complex Cyber Assurance engagements, including:
  • Cybersecurity controls assurance (IT general controls, cybersecurity controls testing).
  • Security governance and operating model assessments.
  • Cloud security assurance across Azure, AWS, and GCP environments.
  • Vulnerability management assurance and cyber maturity assessments.
  • Identity and access management assurance.
  • ISO 27001 control reviews and readiness assessments.
• Ensure all work adheres to leading industry frameworks and standards, including:
  • ISO/IEC 27001
  • NIST Cybersecurity Framework (CSF)
  • CIS Controls
  • Zero Trust principles
  • Cloud security standards across major hyperscalers
  • COBIT
• Drive high‑quality, risk-based, value-driven outcomes that enhance clients’ cybersecurity posture and control maturity.
• Leverage emerging tools and methodologies to continuously improve assurance delivery.
• Note:  This role is separate from operational cybersecurity services (e.g., tool configuration, pentesting, SOC operations, incident response)

Team Leadership & Development

• Build, grow, and lead a high-performing Cyber Assurance team, scaling from a lean foundation to a robust capability.
• Mentor and develop practitioners at all levels, fostering a culture of excellence, collaboration, inclusion, and continuous skills development.
• Provide technical guidance on cybersecurity frameworks, assurance methodologies, cloud security concepts, and ISO requirements.
• Collaborate with regional and global Deloitte teams to bring leading practices, accelerators, and methodologies to the Africa market.

• 12+ years of experience in cybersecurity assurance, technology risk, IT audit, or related governance roles.
• Proven experience leading complex cyber assurance or cyber governance engagements within a professional services or consulting environment.
• Strong understanding of cybersecurity frameworks and leading practices, including:
  • ISO/IEC 27001
  • NIST CSF
  • CIS Controls
  • Zero Trust architectures
  • Cloud security best practices across Azure, AWS, and GCP
  • COBIT
• Hands‑on familiarity with cybersecurity concepts and cloud environments (for contextual understanding; not implementation-focused).
• Demonstrated success in business development and senior client relationship management.
• Professional certifications such as CISA, CISSP, CISM, CRISC, CCSP, ISO 27001 Lead Auditor/Implementer, or cloud security certifications are highly advantageous.
• Experience in a Big 4 or similar professional services environment is preferred.
• Strong leadership, communication, and stakeholder management skills.

Leadership Capabilities

• Living our Purpose - Acts as a role model, embracing and living our purpose and values, and recognizing others for the impact they make.
• Talent development - Develops high-performing people and teams through challenging and meaningful opportunities.
• Performance drive - Delivers exceptional client service; maximizes results and drives high performance from people while fostering collaboration across businesses and borders.
• Influence - Influences clients, teams, and individuals positively, leading by example and establishing confident relationships with increasingly senior people.
• Strategic direction - Understands key objectives for clients and Deloitte, aligns people to objectives and sets priorities and direction.

Note: The list of tasks / duties and responsibilities contained in this document is not necessarily exhaustive.  Deloitte may ask the employee to carry out additional duties or responsibilities, which may fall reasonably within the ambit of the role profile, depending on operational requirements.

Be careful of Recruitment Scams: Fraudsters or employment scammers often pose as legitimate recruiters, employers, recruitment consultants or job placement firms, advertising false job opportunities through email, text messages and WhatsApp messages. They aim to cheat jobseekers out of money or to steal personal information.

To help you look out for potential recruitment scams, here are some Red Flags:

• Upfront Payment Requests: Deloitte will never ask for any upfront payment for background checks, job training, or supplies.
• Requests for Personal Information: Be wary if you are asked for sensitive personal information, especially early in the recruitment process and without a clear need for it. Fraudulent links or contractual documents may require the provision of sensitive personal data or copy documents (e.g., government issued numbers or identity documents, passports or passport numbers, bank account statements or numbers, parent’s data) that may be used for identity fraud. Do not provide or send any of these documents or data. Please note we will never ask for photographs at any stage of the recruitment process.
• Unprofessional Communication: Scammers may communicate in an unprofessional manner. Their messages may be filled with poor grammar and spelling errors. The look and feel may not be consistent with the Deloitte corporate brand.

If you're unsure, make direct contact with Deloitte using our official contact details. Be careful not to use any contact details provided in the suspicious job advertisement or email.

At Deloitte, we want everyone to feel they can be themselves and to thrive at work—in every country, in everything we do, every day. We aim to create a workplace where everyone is treated fairly and with respect, including reasonable accommodation for persons with disabilities.

We are committed to employment equity and building a diverse and inclusive workplace across the African continent. Our recruitment processes are aligned with our Employment Equity Plan and the principles of the Employment Equity Act. Preference may be given to candidates from designated groups.

We actively support the inclusion of people with disabilities and embrace neurodiversity in the workplace. We recognise and value the unique strengths that neurodivergent individuals bring, and we are committed to creating an environment where everyone can thrive.

If you require reasonable accommodations in relation to your disability and neurodiverse needs during the recruitment process, please let us know. We are happy to make adjustments to suit your individual needs.